dddcc3aaaae00b8fbfda5e97f22e92945760b6dfd443cb892147e53ad85ba2eb

General

Target

dddcc3aaaae00b8fbfda5e97f22e92945760b6dfd443cb892147e53ad85ba2eb
Size

38KB
MD5

3376279ffbc918f64a4beb2464e48294
SHA1

c1aaf05a006de9eceb001e20fc76cd045d0c3b69
SHA256

dddcc3aaaae00b8fbfda5e97f22e92945760b6dfd443cb892147e53ad85ba2eb
SHA512

4c27e4de4270229bb476354ee157a1913849f89a463dfaff05081ab7f3db7a2ef347b22b8acd7001f548d678569fbc16e4f0592c4ecee3214cc48649f420a9d7
SSDEEP

192:GOE2En5/DqST3On+UH+3oEen1Rc0vfgF5ViTlNfhSe1JEZvSzpag2:EhxqO3dO+YbW5VihxhSe1/pl2

Score

N/A

Malware Config

Signatures

Files

dddcc3aaaae00b8fbfda5e97f22e92945760b6dfd443cb892147e53ad85ba2eb
.exe windows x86

7e192f8c83e5ef9f2e6ab30860b0d538

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

rasman

RasGetDialParams

odbc32

SQLDescribeColW
SQLDescribeParam
SQLDisconnect
SQLDriverConnect
SQLDriverConnectA
SQLDriverConnectW
SQLDrivers
SQLDriversA
SQLDriversW
SQLEndTran
SQLError
SQLErrorA
SQLErrorW
SQLExecDirect
SQLExecDirectA
SQLExecDirectW
SQLExecute
SQLExtendedFetch
SQLFetch
SQLFetchScroll
SQLForeignKeys
SQLForeignKeysA
SQLForeignKeysW
SQLFreeConnect
SQLFreeEnv
SQLFreeHandle
SQLFreeStmt
SQLGetConnectAttr
SQLGetConnectAttrA
SQLGetConnectAttrW
SQLGetConnectOption

kernel32

MapViewOfFileEx
GetACP
GetSystemDirectoryA
LocalFree
SetConsoleTitleW
EnumCalendarInfoW
GetFileSize
ReadFile
CreateFileA

pdh

PdhAdd009CounterA
PdhAdd009CounterW
PdhAddCounterA
PdhAddCounterW

crypt32

CertDeleteCTLFromStore
CertControlStore
CertCloseStore
CertAlgIdToOID
CertDuplicateStore
CertFindAttribute
CertFindCRLInStore
CertFindCTLInStore

cmutil

CmStrCpyAllocW

mtxclu

MtxCluIsClusterPresent

samlib

SamAddMemberToAlias

Sections

.text
Size: 5KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e192f8c83e5ef9f2e6ab30860b0d538

Headers

File Characteristics

Imports

rasman

odbc32

kernel32

pdh

crypt32

cmutil

mtxclu

samlib

Sections

.text Size: 5KB - Virtual size: 24KB

DATA Size: 7KB - Virtual size: 80KB

.rsrc Size: 24KB - Virtual size: 24KB

Size: 512B - Virtual size: 496B

.text
Size: 5KB - Virtual size: 24KB

DATA
Size: 7KB - Virtual size: 80KB

.rsrc
Size: 24KB - Virtual size: 24KB